Solved

Use GPO to lock down USB CDROM drives

Posted on 2010-09-16
3
1,354 Views
Last Modified: 2012-06-27
I am trying to lock down USB and CDROM Drives with GPO. I went to http://support.microsoft.com/kb/555324 copied and pasted the contents into a text document. Then, renamed the file with a .adm extension. Opened group policy management and created a new object called USB lock down.

Next, went to edit mode on the new object, and under computer config, right clicked admin templates and added the usblockdown.adm. After this process the template shows up in the add remove template window.

So my question.....is this the correct process? Also, after the template is added where can I modify the settings for it? I am unsure where to navigate to.

Thank you in advance
0
Comment
Question by:dwesolowicz
  • 2
3 Comments
 
LVL 7

Accepted Solution

by:
grantsewell earned 500 total points
ID: 33696408
Yes, this is correct so far.

To continue, in the policy, navigate to Computer Configuration, Policies, and right-click on Administrative Templates. Select "Filter Options..." and uncheck the box marked "Only show policies that can be fully managed". In 7/2008+, this may be displayed as a drop-down box. Change it to "Any".

The new USB policies will be displayed within Administrative Templates.

Good luck!
0
 

Author Comment

by:dwesolowicz
ID: 33696532
Thanks for the reply! I tried what you said, unchecked the box and the policy is now showing under Custom Policy Settings.

Thanks Again!
0
 
LVL 7

Expert Comment

by:grantsewell
ID: 33696922
Great! I'm a group policy nerd :) If the works out for you please go ahead and close out the question.

Cheers,

Grant
0

Featured Post

VMware Disaster Recovery and Data Protection

In this expert guide, you’ll learn about the components of a Modern Data Center. You will use cases for the value-added capabilities of Veeam®, including combining backup and replication for VMware disaster recovery and using replication for data center migration.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Error login w2012 domain 6 59
Cisco ASDM device NT domain question 4 30
AD Account Lockout 22 31
need help with active directory 4 20
Companies that have implemented Microsoft’s Active Directory need to ensure that the Active Directory is configured and operating properly. If there are issues found and not resolved, it eventually leads the components to fail or stop working and fi…
Introduction You may have a need to setup a group of users to allow local administrative access on workstations.  In a domain environment this can easily be achieved with Restricted Groups and Group Policies. This article will demonstrate how to…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …

930 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now